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ABSTRACT 



A justification/authentication personal certificate system 
stores in a remote database a counterpart of an identifier and 
a digital watermark contained in the personal certificate. The 
personal certificate includes the digital watermark embed- 
ded in an authentic image such as a facial photograph, a 
retinal scan, or a fingerprint. When the personal certificate is 
used, the authentic image is read fr-om the personal certifi- 
cate, and the digital watermark information is extracted. The 
digital watermark information and the identifier are com- 
pared with the counterparts stored in the database. If the 
extracted digital watermark information is identical to the 
information in the database, then the personal certificate is 
judged to be imjustifiable. In one embodiment, at least one 
of the identifier and digital watermark are changed each time 
the system justifies the personal certificate. 

12 Claims, 5 Drawing Sheets 
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Thereafter, at step 21, the read means 30 reads the 
authentic image that is stored in the memory 13 and in which 
digital watermark information is surely embedded, through 
the input-output port 14. 

Thereafter, at step 22, the control means 34 transmits the 5 
obtained authentic image to the watermark information 
extracting means 35, and causes the extracting means 35 to 
extract watermark information from the authentic image. If 
this extraction fails (step 23), the control means 34 judges 
that the personal certificate 10 is unjustifiable (step 24), and lo 
terminates the processing. 

On the other hand, if the extraction of the watermark 
information succeeds, the control means 34 connects to the 
server 42 through the communication means 40 (step 25). 

The control means 34 transmits the identifier 11 that has 15 
been read from the personal certificate to the watermark 
information inquiring means 39, and causes the mquiring 
means 39 to acquire the watermark information correspond- 
ing to the identifier 11 (step 26). 

When receiving this inquiry, the server 42 retrieves the 20 
watermark information corresponding to the identifier in the 
database 3. If the watermark information is not found, the 
server 42 sends a message that the corresponding informa- 
tion is not found. If the watermark information is found, the 
server 42 returns the found watermark information to the 25 
control means 34 (step 27). 

When the control means 34 receives the information fi-om 
the server 42, the control means 34 releases the connection 
(step 28). If the control means 34 receives the message that 
the watermark information is not found (step 29), it is judged 30 
that the personal certificate 10 is unjustifiable (step 24), and 
the processing is terminated. 

On the other hand, when receiving the watermark infor- 
mation, the control means 34 transmits the watermark infor- 
mation extracted by the watermark information extracting 35 
means 35 and the watermark information received from the 
server 42 at this time to the watermark information com- 
paring means 36 for a comparison. If the watermark infor- 
mation from the two sources are found to be non-identical in 
the comparison made by the watermark information com- 40 
paring means 36, the control means 34 determines that the 
personal certificate 10 is unjustifiable (step 24), and termi- 
nates the processing. 

On the other hand, if the watermark information from the 
two sources are found to be identical in the comparison, the 45 
control means 34 determmes that the personal certificate 10 
is justifiable (step 31), and completes the processing. 

Preferably, when the watermark is judged to be justifiable, 
the same process as the main part of FIG. 3 is carried out 
once again at step 32, and the watermark information 50 
corresponding to this identifier is updated (step 32). As a 
matter of course, the update means updates both the digital 
watermark embedded in the authentic image of the persona] 
certificate 10 and the digital watermark in the database 3 
(note that these digital watermarks are caused to be identi- 55 
cal). If so, the digital watermark is updated whenever the 
authentication process succeeds. This adds an additional 
defense against falsification or forgery. 

As described above, in the present invention, the digital 
watermark embedded in the authentic image of the personal 60 
certificate does not depend only on proof by authentication 
equipment. Instead, it compares the digital watermark stored 
in the database remote from the personal certificate or the 
authentication equipment with the digital watermark with 
the digital watermark on the personal certificate. Therefore, 65 
a preventive system against falsification or against other 
unjustifiable use is constructed. 
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Having described preferred embodiments of the invention 
with reference to the accompanying drawings, it is to be 
understood that the invention is not limited to those precise 
embodiments, and that various changes and modifications 
may be effected therein by one skilled in the art without 
departing from the scope or spirit of the invention as defined 
in the appended claims. 
What is claimed is: 

1. Ajustification authenticating system comprising: 
a database for storing an identifier of a personal certificate 

and digital watermark information related to said iden- 
tifier; 

a personal certificate containing said identifier; 
said personal certificate also containing a readable authen- 
tic image in which a digital watermark relative to said 
identifier is embedded; 
a read unit operable to read at least said authentic image 

fi-om said personal certificate; 
a watermark mformation inquiring tmit operable to extract 
digital watermark information corresponding to said 
identifier from said authentic image; and 
a watermark information comparing unit operable to 
judge whether said digital watermark information 
extracted by said watermark information inquuing unit 
from said personal certificate is identical to said water- 
mark information stored in said database; and 
a unit operable to update said digital watermark informa- 
tion stored in said database and said digital watermark 
information embedded in said authentic image in said 
personal certificate each time said watermark informa- 
tion inquiring unit judges said digital watermark infor- 
mation to be justifiable. 

2. The justification authenticating system of claim 1, 
wherein said personal certificate includes: 

an information carrier for storing said authentic image; 

said digital watermark is embedded in said authentic 
image stored in said information carrier. 

3. Tlie justification authenticating system of claim 2, 
wherein said information carrier is at least one of a semi- 
conductor memory and a magnetic recording material. 

4. The justification authenticating system of claim 2, 
wherein: 

said information carrier includes said authentic image 
being a printed authentic image affixed to said personal 
certificate; and 
said read EsaSal reads said printed image. 

5. The justification authenticating system of claim 1, 
wherein at least one of said identifier and said digital 
watermark information includes an element that is randomly 
generated. 

6. The justification authenticating system of claim 1, 
fiirther comprising: 

a communication device for communicating said water- 
mark information between said watermark information 
inquiring unit and said database. 

7. A personal certificate issuing system comprising: 
an identifier generating unit operable to generate an 

identifier unique to a personal certificate; 
a watermark information generating unit operable to 
generate digital watermark information corresponding 
to said identifier; 
a database for storing said identifier of said personal 
certificate and said digital watermark mformation rela- 
tive to said identifier in relation to each other, 
a watermark information registering unit operable to store 
said identifier generated by said identifier generating 
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unit and said digital watermark information generated said authentic image includes a digital watermark embed- 
by said watermark information generating unit in said ded in said authentic image stored in said information 



an image input vinit operable to input a raw authentic 9. The personal certificate issuing system of claim 8, 

image; 5 wherein said information carrier is at least one of a semi- 

a watermark-embedded image forming unit operable to conductor memory and a magnetic material, 

form a watermark-embedded authentic image in which 10. The personal certificate issuing system of claim 8| 

said digital watermark is embedded on said authentic wherein: 

image input by said image input unit; and said information carrier includes said authentic image 

a personal certificate that readably carries said authentic 10 being a printed authentic image affixed to said personal 

image generated by said watermark-embedded image certificate; and 

forming unit and said identifier generated by said said read dfiaaSJ reads said printed authentic image, 

identifier generating unit; 11. The personal certificate issuing system of claim 7, 

wherein said digital watermark information stored in said wherein at least one of said identifier and said digital 

database and embedded in said authentic image of said 15 watermark information includes an element that is randomly 

personal certificate is update according to predeter- generated. 

mined timing, and said predetermined timing includes 12. The personal certificate issuing system of claim 7, 

each time said system correctly justifies an authentic further comprising: 

image. a communication device for communicating said water- 

8. The personal certificate issuing system of claim 7, 20 mark information between said watermark information 

wherein: inquiring unit and said database, 
said persona! certificate includes an information carrier 

for storing said authentic image; and ***** 



